|Applies To||Keon Certificate Authority|
Sentry CA 3.5 and later
|Issue||LDAP objects that cannot be edited using listuclass.xuda|
When editing some LDAP objects using listuclass.xuda, the following error message will display:
ReplaceObjectFromEditForm: parameter type mismatch!
CLASS (xuda_cert_req): Adding field EXTENSIONS failed!
|Cause||The problem should arise for any object whose class definition has one or more attributes whose type is anything other than 'IA5' (selecting 'Edit' for an object class in listuclass will show the field types). By default, there are three such object classes, all of which contain attributes of type 'Octets'.|
- used extensively in the enrollment process
- no longer used, but still defined and available for end-user use
- used minimally in support of certificate extensions
- these objects should almost certainly not be edited by any user -- changes may cause conflicts with compiled code, or with upgrades from one version to another
Also, any object classes that users define for themselves having one or more attributes whose type is not 'IA5' will also exhibit the problem.
|Resolution||Do not edit object classes that have one or more attributes whose type is not "IA5" using listuclass.xuda.|
|Legacy Article ID||a3686|